Your message dated Fri, 03 Jul 2020 18:18:39 +0000
with message-id <[email protected]>
and subject line Bug#962005: fixed in perl 5.24.1-3+deb9u7
has caused the Debian Bug report #962005,
regarding perl: regexp security issues: CVE-2020-10543, CVE-2020-10878,
CVE-2020-12723
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
962005: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=962005
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: perl
Version: 5.30.2-1
Severity: important
Tags: security pending
X-Debbugs-Cc: [email protected]
These three issues have all been judged to be no-dsa. An unstable
release will be forthcoming and we hope to provide fixes for stable and
oldstable via point releases.
The following text comes from
<https://metacpan.org/release/XSAWYERX/perl-5.30.3>.
[CVE-2020-10543] Buffer overflow caused by a crafted regular expression
A signed size_t integer overflow in the storage space calculations for
nested regular expression quantifiers could cause a heap buffer overflow in
Perl's regular expression compiler that overwrites memory allocated after
the regular expression storage space with attacker supplied data.
The target system needs a sufficient amount of memory to allocate partial
expansions of the nested quantifiers prior to the overflow occurring. This
requirement is unlikely to be met on 64-bit systems.
Discovered by: ManhND of The Tarantula Team, VinCSS (a member of Vingroup).
[CVE-2020-10878] Integer overflow via malformed bytecode produced by a
crafted regular expression
Integer overflows in the calculation of offsets between instructions for the
regular expression engine could cause corruption of the intermediate
language state of a compiled regular expression. An attacker could abuse
this behaviour to insert instructions into the compiled form of a Perl
regular expression.
Discovered by: Hugo van der Sanden and Slaven Rezic.
[CVE-2020-12723] Buffer overflow caused by a crafted regular expression
Recursive calls to S_study_chunk() by Perl's regular expression compiler to
optimize the intermediate language representation of a regular expression
could cause corruption of the intermediate language state of a compiled
regular expression.
Discovered by: Sergey Aleynikov.
Additional Note
An application written in Perl would only be vulnerable to any of the above
flaws if it evaluates regular expressions supplied by the attacker.
Evaluating regular expressions in this fashion is known to be dangerous
since the regular expression engine does not protect against denial of
service attacks in this usage scenario.
--- End Message ---
--- Begin Message ---
Source: perl
Source-Version: 5.24.1-3+deb9u7
Done: Dominic Hargreaves <[email protected]>
We believe that the bug you reported is fixed in the latest version of
perl, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Dominic Hargreaves <[email protected]> (supplier of updated perl package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sat, 20 Jun 2020 18:33:46 +0100
Source: perl
Architecture: source
Version: 5.24.1-3+deb9u7
Distribution: stretch
Urgency: medium
Maintainer: Niko Tyni <[email protected]>
Changed-By: Dominic Hargreaves <[email protected]>
Closes: 962005 962019
Changes:
perl (5.24.1-3+deb9u7) stretch; urgency=medium
.
* Multiple regexp security fixes (Closes: #962005)
+ [SECURITY] CVE-2020-10543: Buffer overflow caused by a crafted
regular expression
+ [SECURITY] CVE-2020-10878: Integer overflow via malformed bytecode
produced by a crafted regular expression
+ [SECURITY] CVE-2020-12723: Buffer overflow caused by a crafted
regular expression
* Fix FTBFS with IPv6-only host (Closes: #962019)
Checksums-Sha1:
a58a401060c1fa8e47ce4032fd259a8b0d2bca9f 2393 perl_5.24.1-3+deb9u7.dsc
a725e39e53e51546b737cc9d03c7fe259273b686 192140
perl_5.24.1-3+deb9u7.debian.tar.xz
e8b1c432c2b73cce1fe4f84c493d65dbb14c9f74 4735
perl_5.24.1-3+deb9u7_source.buildinfo
Checksums-Sha256:
3ff763d4ea2bbcb180faafbdc3edfed7488e9f0b2904131b2302bb7320312b0c 2393
perl_5.24.1-3+deb9u7.dsc
9f339ca072fc87ee1225520f45594cb052dc591e163d6d19b98de267df3326e4 192140
perl_5.24.1-3+deb9u7.debian.tar.xz
bd46b53f3eb56760dea1b0ec4b08faf9db7057210784b0481ce8ca8598a3d93f 4735
perl_5.24.1-3+deb9u7_source.buildinfo
Files:
90f7f401f791739e116ccfcd1b6693cd 2393 perl standard perl_5.24.1-3+deb9u7.dsc
d49ad196e89a31112958618699c801a9 192140 perl standard
perl_5.24.1-3+deb9u7.debian.tar.xz
ff27cae9cadcd9ee94a7ae741fb2fe95 4735 perl standard
perl_5.24.1-3+deb9u7_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=L4Hp
-----END PGP SIGNATURE-----
--- End Message ---
